Torrent download = endless Portscans? Help me please!
Posted on 2009-04-22
1.) I have an Astaro ASG220 firewall defending my corporate network. However, my question is not specific to Astaro's.
2.) I run the premium (pay version) of AVG 8.5 on my laptop. I had to disable the software firewall because it conflicted with Appriver hosted exchange. So I'm using AVG 8.5 without any software firewall.
3.) THE PROBLEM: Everytime anybody on my LAN starts a torrent download - I receive an endless stream of 'portscans' warnings from the Astaro that lists the host's IP address the portscans are coming from. I just started a 7-hour torrent for Fedora-10-x86_64-CDs (something I would expect to be clean) that I simply must download for tomorrow - no excuses. You guessed it - the instant I started the download - the Astaro starts sending me portscan warnings. Super frustrating! How is it possible that every torrent is "infected" with a portscan viruses?
4.) MAIN QUESTION: What precautions can I make to neutralize portscans prior, during, after a torrent download? How do you neutralize active portscans - without killing a critical download?
5.) FYI: It has been roughly (100) minutes since I began the download - I have transmitted over (300) portscans from my laptop that my Astaro has warned on.
6.) PEOPLE WITHOUT HARDWARE FIREWALLS THAT LIKE TORRENT: Take it from me - lately - ALL torrents are infected with portscans. Yes ALL of them. I don't pretend to know why or how. My point is only that you should pay attention to the steps to neutralize portscans even though you don't have a firewall confirming that you're sending portscans. Be careful.